mirror of
https://github.com/opentofu/opentofu.git
synced 2025-01-15 11:13:09 -06:00
fcff4cbc95
This credentials source wraps another and caches its results in memory in a map that is keyed on the request hostname. This should ease the common case of many services operating on the same hostname by allowing an initial set of credentials to be re-used for subsequent requests.
46 lines
1.4 KiB
Go
46 lines
1.4 KiB
Go
package auth
|
|
|
|
import (
|
|
"github.com/hashicorp/terraform/svchost"
|
|
)
|
|
|
|
// CachingCredentialsSource creates a new credentials source that wraps another
|
|
// and caches its results in memory, on a per-hostname basis.
|
|
//
|
|
// No means is provided for expiration of cached credentials, so a caching
|
|
// credentials source should have a limited lifetime (one Terraform operation,
|
|
// for example) to ensure that time-limited credentials don't expire before
|
|
// their cache entries do.
|
|
func CachingCredentialsSource(source CredentialsSource) CredentialsSource {
|
|
return &cachingCredentialsSource{
|
|
source: source,
|
|
cache: map[svchost.Hostname]HostCredentials{},
|
|
}
|
|
}
|
|
|
|
type cachingCredentialsSource struct {
|
|
source CredentialsSource
|
|
cache map[svchost.Hostname]HostCredentials
|
|
}
|
|
|
|
// ForHost passes the given hostname on to the wrapped credentials source and
|
|
// caches the result to return for future requests with the same hostname.
|
|
//
|
|
// Both credentials and non-credentials (nil) responses are cached.
|
|
//
|
|
// No cache entry is created if the wrapped source returns an error, to allow
|
|
// the caller to retry the failing operation.
|
|
func (s *cachingCredentialsSource) ForHost(host svchost.Hostname) (HostCredentials, error) {
|
|
if cache, cached := s.cache[host]; cached {
|
|
return cache, nil
|
|
}
|
|
|
|
result, err := s.source.ForHost(host)
|
|
if err != nil {
|
|
return result, err
|
|
}
|
|
|
|
s.cache[host] = result
|
|
return result, nil
|
|
}
|